Two buffer overflow flaws were discovered in the way the telnet clienthandles messages from a server. An attacker may be able to executearbitrary code on a victim's machine if the victim can be tricked intoconnecting to a malicious telnet server. The Common Vulnerabilities andExposures project (cve.mitre.org) has assigned the names CAN-2005-0468and CAN-2005-0469 to these issues.